diff options
author | Glenn Strauss <gstrauss@gluelogic.com> | 2017-05-23 22:28:06 -0400 |
---|---|---|
committer | Glenn Strauss <gstrauss@gluelogic.com> | 2017-06-13 08:55:38 -0400 |
commit | 9fd39690be809460cafd5bd02ad2262a3695cbbf (patch) | |
tree | 0e546f96ac584f27c5a691f65b3ee5e1b0c84fa9 /src/fdevent.c | |
parent | 8af9e71ccc69d00ac171f1d7a86da4cfff42bd2e (diff) | |
download | lighttpd-git-9fd39690be809460cafd5bd02ad2262a3695cbbf.tar.gz |
[mod_openssl] adjust use of ssl.ca-dn-file
ssl.ca-dn-file is used to send list of valid CA DNs to client for client
cert verification. If ssl.ca-dn-file is not specified, then the CAs in
ssl.ca-file are used.
client certs are validated against the set of certs from both
ssl.ca-dn-file and ssl.ca-file, but issuer of cert provided by
client must be in ssl.ca-dn-file if ssl.ca-dn-file is specified.
(certs should not need to be in to both ssl.ca-file and ssl.ca-dn-file)
(thx m4t)
Diffstat (limited to 'src/fdevent.c')
0 files changed, 0 insertions, 0 deletions